Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: LVxCuQ+XEcufurXQaQZteGmv8reR0Ck82kfWQRXpSPo=
Subject key identifier: 77:77:0B:7B:7A:3B:22:AF:62:CE:2F:E0:C5:A4:92:0E:C2:E7:C8:5F
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 0197B7EA210436C71A6243DB0DAF092CBE32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1354
Signing time: Sat 28 Jun 2025 19:01:03 +0000
Manifest this update: Sat 28 Jun 2025 19:01:03 +0000
Manifest next update: Sun 29 Jun 2025 19:01:03 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: jBEJq8YX3Vpyv9QBxBy4b8X8um7XefUJBeLfEjdKjGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:21:04:36:c7:1a:62:43:db:0d:af:09:2c:be:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Jun 28 19:01:03 2025 GMT
Not After : Jun 29 19:01:03 2025 GMT
Subject: CN=77770b7b7a3b22af62ce2fe0c5a4920ec2e7c85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:37:97:05:fc:9c:fa:10:5b:7f:4a:2c:80:39:
32:c1:5b:f1:b2:5c:ec:45:b4:88:18:6d:98:38:67:
41:f2:85:6d:ed:96:9e:4a:7e:15:30:64:79:0b:e7:
01:f4:1b:62:95:af:dd:60:f4:a2:aa:ec:f5:ce:7b:
06:80:35:5c:d1:a6:22:4f:cc:57:9f:17:be:c6:9a:
ea:b6:2a:70:1d:de:8c:6f:53:6b:da:1e:ff:b0:51:
26:04:ec:9a:23:92:54:e7:24:a4:16:3e:7a:21:67:
c6:20:2b:26:07:9e:dd:33:c3:89:db:a5:25:55:ce:
74:82:ab:32:6e:ee:03:54:15:c1:66:5b:8a:1e:8e:
b5:b7:e1:06:55:ce:98:39:73:fb:34:65:12:dd:cc:
6f:a1:56:47:e7:ac:70:96:aa:81:be:93:38:28:b7:
2e:59:f7:de:d8:a7:15:c9:c4:3c:27:96:17:fc:92:
74:f8:a2:3a:3d:e1:6b:f1:5a:34:1a:e5:9b:64:08:
ee:10:9e:a2:05:15:1d:34:61:1b:c2:b7:51:6a:c4:
9a:f4:d4:78:c1:5c:77:da:73:89:41:ab:ee:b4:3a:
a2:93:12:ce:05:a0:f7:e1:3c:32:ab:be:61:8a:5f:
62:41:5a:91:b6:f3:ea:cd:36:e0:d0:81:8c:bf:da:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:77:0B:7B:7A:3B:22:AF:62:CE:2F:E0:C5:A4:92:0E:C2:E7:C8:5F
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e0:82:f0:28:17:2e:a0:34:51:06:c2:95:df:6c:88:15:07:
94:be:fb:d0:f5:da:dc:d7:b3:1b:f9:b2:0d:b3:25:3a:d5:66:
8a:2a:cd:62:25:cd:84:11:42:fd:26:99:6e:cd:0d:1e:7f:0e:
5f:dc:f2:83:28:5b:c6:ed:bc:f2:b5:3c:8c:a2:bb:fa:0f:85:
a8:65:56:cb:30:29:ea:dd:7e:6b:98:fe:a7:64:a1:c2:c6:c4:
63:2f:fd:c5:5f:f9:d3:20:43:31:58:b2:8c:88:72:70:f4:6f:
39:95:57:ed:f8:a4:94:73:24:54:88:d4:40:7f:8f:f3:f7:71:
be:6c:a4:d6:93:38:79:f6:99:3a:93:df:00:b0:0e:3e:72:83:
2b:e2:f2:ca:a8:fd:3f:0d:a0:e3:a9:1d:d7:eb:01:2c:34:50:
4d:6b:24:4f:74:f2:14:28:61:01:c4:1d:30:e9:7e:e7:56:31:
90:f4:87:81:c1:2a:2f:24:f8:95:a0:c4:50:b9:ed:b4:3e:0b:
64:13:2d:dd:c8:e1:ad:be:2a:06:88:86:da:b7:e6:0c:3b:af:
e3:ce:6c:91:14:39:61:44:47:8d:75:9e:57:d4:30:eb:d2:0f:
57:33:4c:d5:9c:a8:5b:a1:92:88:ec:64:23:bd:8b:52:11:c7:
c9:fc:f7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:16 2025 by rpki-client